PK95461: ITCAM LOGIN RESULTS IN NEW EMPTY LOGIN SCREEN AFTER PK79894

Fixes are available

APAR status

Closed as program error.

Error description

On fix pack 6.1.0.25 when application security is enabled, a
login screen is displayed to access ITCAM. After the user
enters and submits login details a new empty login creen is
displayed. As a reult it is not possible to access ITCAM.

Local fix

Problem summary

****************************************************************
* USERS AFFECTED:  IBM WebSphere Application Server Version    *
*                  6.1.0.25 and 7.0.0.5 users.                 *
****************************************************************
* PROBLEM DESCRIPTION: If a j_security_check request URI       *
*                      includes additional servlet path data   *
*                      and filters are mapped to the servlet   *
*                      path, the filters are not called.       *
****************************************************************
* RECOMMENDATION:                                              *
****************************************************************
As a result of PK79894, a filter for a j_security_check request
will only be called if the filter mapping matches to
"/j_security_check". This is problematic if, for example, the
j_security _check request specifies a URI  relative to the
context root of "/path/j_security_check" and filters specify a
mapping which requires "/path" to result in a match. The same
issue exists for "ibm_security_logout" requests.

Note that IBM Tivoli Composite Application Manager (ITCAM)
relies on such a filter mapping and as a result its filters are
not called for a j_security_check request after PK79894. This
causes a login failure and re-display of an empty login screen.

Problem conclusion

The WebContainer has been modified so that the URI relative to
the context root of a j_security_check request is used when
mapping a request to filters. This restores the behavior of
the WebContainer in this respect to pre PK79894 behavior.

The fix for this APAR is currently targeted for inclusion in
fix packs 6.1.0.27 and 7.0.0.7.  Please refer to the
Recommended Updates page for delivery information:
http://www.ibm.com/support/docview.wss?rs=180&uid=swg27004980

Temporary fix

Comments

APAR Information

APAR number
PK95461
Reported component name
WEBSPHERE APP S
Reported component ID
5724J0800
Reported release
61W
Status
CLOSED PER
PE
NoPE
HIPER
NoHIPER
Special Attention
NoSpecatt
Submitted date
2009-09-03
Closed date
2009-09-18
Last modified date
2009-09-22

APAR is sysrouted FROM one or more of the following:
APAR is sysrouted TO one or more of the following:

Fix information

Fixed component name
WEBSPHERE APP S
Fixed component ID
5724J0800

Applicable component levels

R61A PSY
UP
R61H PSY
UP
R61I PSY
UP
R61P PSY
UP
R61S PSY
UP
R61W PSY
UP
R61Z PSY
UP
R700 PSY
UP

[{"Business Unit":{"code":"BU059","label":"IBM Software w\/o TPS"},"Product":{"code":"SSEQTP","label":"WebSphere Application Server"},"Platform":[{"code":"PF025","label":"Platform Independent"}],"Version":"6.1","Line of Business":{"code":"LOB45","label":"Automation"}}]

Document Information

Modified date:
29 December 2021

Tips

PK95461: ITCAM LOGIN RESULTS IN NEW EMPTY LOGIN SCREEN AFTER PK79894

Fixes are available

Subscribe

APAR status

Closed as program error.

Error description

Local fix

Problem summary

Problem conclusion

Temporary fix

Comments

APAR Information

APAR number

Reported component name

Reported component ID

Reported release

Status

PE

HIPER

Special Attention

Submitted date

Closed date

Last modified date

APAR is sysrouted FROM one or more of the following:

APAR is sysrouted TO one or more of the following:

Fix information

Fixed component name

Fixed component ID

Applicable component levels

R61A PSY

R61H PSY

R61I PSY

R61P PSY

R61S PSY

R61W PSY

R61Z PSY

R700 PSY

Document Information

Share your feedback

Need support?